this post was submitted on 02 Sep 2024
233 points (96.4% liked)
Pulse of Truth
493 readers
99 users here now
Cyber Security news and links to cyber security stories that could make you go hmmm. The content is exactly as it is consumed through RSS feeds and wont be edited (except for the occasional encoding errors).
This community is automagically fed by an instance of Dittybopper.
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Unless...
https://crypto.stanford.edu/gyrophone/
Starting with version 12, the Android operating system introduced a limit of 200Hz to help mitigate such attacks, but as you indicate research shows that some reconstruction may be possible in some scenarios. This is an ongoing area and future mitigations continue to be considered.
From Kaspersky:
The monitoring application would also need to run in the foreground to access the data on a continuous basis.
Overall it does look like an interesting theoretical concern.
Background app can request "disable battery optimization" aka continuous operation. Users will just click okay
Here's an exotic conspiracy theory: advertisers are performing sensor fusion / superresolution on many colocated gyrophones to exceed the per-device 200Hz cap. Phone clocks are certainly not aligned to the millisecond, so this would enable them to get a higher time resolution.